×
Register Here to Apply for Jobs or Post Jobs. X

Sr.Analyst - IS Risk Management Assurance

Job in 110006, Delhi, Delhi, India
Listing for: Synchrony
Full Time position
Listed on 2026-07-01
Job specializations:
  • IT/Tech
    Information Security, Cybersecurity, IT Consultant, Data Security
Job Description & How to Apply Below
Role

Title:

Sr.Analyst - IS Risk Management Assurance - Analyst (L09)

Company Overview

Synchrony (NYSE: SYF) is a premier consumer financial services company delivering one of the industry's most complete digitally enabled product suites. Our experience, expertise and scale encompass a broad spectrum of industries including digital, health and wellness, retail, telecommunications, home, auto, outdoors, pet and more.

We have recently been ranked #2 among India's Best Companies to Work for by Great Place to Work. We were among the Top 50 India's Best Workplaces in Building a Culture of Innovation by All by GPTW and Top 25 among Best Workplaces in BFSI by GPTW. We have also been recognized by Ambition Box Employee Choice Awards among the Top 20 Mid-Sized Companies, ranked #3 among Top Rated Companies for Women, and Top-Rated Financial Services Companies.
We provide best-in-class employee benefits and programs that cater to work-life integration and overall well-being.
We provide career advancement and upskilling opportunities, focusing to take up leadership roles.

Organizational Overview

Synchrony's Information Security Risk Management program's mission is to protect and enable Synchrony's business by integrating security risk management into our Technology landscape by proactively addressing emerging risk themes. Members of this group would have diversified exposure to Assessments and Audits (PCI, HIPAA etc.), Issue Management, Third Party Risk Management.

Role Summary/Purpose

This role would be supporting information security assurance function part of information security risk management. The role will provide oversight to ensure that controls are adequate to meet legal, regulatory, policy, standards, and security requirements. The role will also participate in audits, reviews, and assessments to ensure compliance with multiple compliance and regulatory standards and frameworks including, but not limited to NIST, PCI-DSS, SOX 404, etc

Key Responsibilities

Collaborate with the team and collectively respond client information security assessments
Engage with clients to discuss assessment findings, address questions or concerns, and provide guidance and support during client assessment
Document client assessment responses to support processes and commonly asked questions
Document and respond to shared assessments SIG(Standardized Information Gathering) questionnaire for external client assessments
Familiarity with Information security policies, procedures and standards to support client assessments
Review and action alerts from Security Rating Tools used to monitor SYF security posture
Support identification of process improvements and implementation of changes
Maintain clear and open communication with key stakeholders throughout the assessment process, including client representatives and internal teams
Continuous Improvements:
Obtain feedback from clients and internal teams to identify areas for process improvement, refine assessment methodologies, and enhance the quality and value of future client assessments
Perform RCSA (Risk & Control Self Assessments) against organization policies, standard controls and regulatory control frameworks
Work collaboratively with all teams in Info Sec to gather evidence from their processes in support of documenting and validating the assurance of RCSA controls
Report any control violation findings through organization risk management framework or model
Support administrative and maintenance tasks associated with GRC and SRS Tools(Black kite)
Evaluate and communicate security risks and solutions to business partners and IT management/staff
Support risk management special projects for Ex:

External Outbound data etc.

Required Skills/Knowledge

Bachelor's Degree in Computer Engineering or related field, with a minimum of 2 years of experience in Information Security OR in lieu of the Bachelor's degree, a minimum of 4 years of experience in Information Security.
Minimum 2 years of experience conducting security risk assessments
Good understanding of IS Risk Management Concepts
Good understanding of IT related US Banking regulations & industry best practices (IT SOX 404, NIST, PCI DSS, HIPAA etc.)
Excellent interpersonal skills with ability to influence team members, management & external groups
Self-motivated & able to work independently or in a team environment & work with virtual teams
Good understanding of foundational cloud security concepts

Desired Skills/Knowledge

In depth understanding of Information Security and Risk Management foundational concepts
Good understanding of data protection, Cloud and AI related concepts/technologies
Experience third party risk assessment tools and technologies such as SIG, UpGuard, Process Unity etc.

Eligibility Criteria

Bachelor's degree in Information Security, Computer Science, or a related filed with minimum of 2 years of practical experience in Information Security and in lieu of Bachelor's Degree minimum of 4 years of relevant experience.

Work Timings:  5:00 AM to 2:00 PM…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary